Report - dura-cell-marketing.online/

Report Overview

Visited public
2023-11-18 07:05:50
Tags
URL
dura-cell-marketing.online/
Finishing URL
www.dura-cell-marketing.online/
IP / ASN
103.18.6.109
#131392 GMO-Z.com Runsystem Joint Stock Company
Title
Duracell España

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.dura-cell-marketing.online	unknown	2023-08-16	2023-09-21 13:39:17	2023-10-18 17:20:41	403 B	12 kB	52.77.138.116
w.ladicdn.com	44911	2018-09-19	2019-05-31 05:28:28	2023-11-17 11:28:33	2.9 kB	147 kB	143.204.55.98
s.zzcdn.me	unknown	2023-01-10	2023-01-12 06:35:08	2023-11-17 16:20:26	439 B	8.1 kB	123.30.58.18
static.ladipage.net	149891	2016-01-01	2017-02-02 11:19:13	2023-11-17 11:28:35	487 B	381 B	52.76.24.172
a.ladipage.com	59666	2014-10-11	2020-08-14 04:05:09	2023-11-17 11:28:34	1.5 kB	1.6 kB	13.250.196.120
dura-cell-marketing.online	unknown	2023-08-16	2023-09-20 20:32:28	2023-09-20 20:32:28	399 B	243 B	103.18.6.109
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-18 05:34:39	558 B	49 kB	142.250.74.163
log.adtimaserver.vn	37174	unknown	2016-07-14 18:25:27	2023-11-17 03:24:16	2.5 kB	1.2 kB	120.138.69.217
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-18 05:31:11	474 B	6.5 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-18 07:05:37	low	52.77.138.116	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate
2023-11-18 07:05:37	low	52.77.138.116	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	www.dura-cell-marketing.online/	ScriptElement	853 B	2023-10-27	2024-08-20
Pretty URL www.dura-cell-marketing.online/ IP 52.77.138.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-27 22:45 Last Seen2024-08-20 22:09 Times Seen2 Hash e8de3a43482471e7536598d6e515db31 fbd068487916d7bf65961347d3f41eaddef55b70 eb1668e76bdf0dd0a6b6953b38e951d51b47681473f4326dd3567c878dafbbf3 Loading...

	www.dura-cell-marketing.online/	ScriptElement	414 B	2023-06-09	2025-04-28
Pretty URL www.dura-cell-marketing.online/ IP 52.77.138.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-09 05:39 Last Seen2025-04-28 01:36 Times Seen217 Hash 4d634fc8cb299d32785140a82120da45 0e09ade1247567c98a274446731aaa114b20cfb6 3bdf7159d021fb02880988f248e4345e703fffe3f4a3c039fb35003b5cbd6507 Loading...

	www.dura-cell-marketing.online/	ScriptElement	2.7 kB	2023-10-24	2025-04-29
Pretty URL www.dura-cell-marketing.online/ IP 52.77.138.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 21:15 Last Seen2025-04-29 11:50 Times Seen658 Hash cbffcd78873a4b0b214aec18073366ce 43e9c13b2720530e26a370cfa5d4ff45ab01cef9 4d3b50c2088e4ae132d8df42d478effbda355f9aacf4c5d720c4dffcfae16f24 Loading...

	unknown	EventHandler	44 B	2023-04-11	2025-04-29
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-11 22:25 Last Seen2025-04-29 11:50 Times Seen1061 Hash dc4086226733e57bf59e1b8755308038 4289690bd47c375da1df322618a5ac8f65c84a9b d62ac494185516a31ddb4edcb73c7de33e5b6d7bda86dc94ec5610dc77e66bc8 Loading...

	w.ladicdn.com/v2/source/ladipagev3.min.js?v=1697884475394	ScriptElement	396 kB	2023-11-16	2024-08-20
Pretty URL w.ladicdn.com/v2/source/ladipagev3.min.js?v=1697884475394 IP 143.204.55.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 16:19 Last Seen2024-08-20 19:16 Times Seen16 Hash 78a64b2987aa53031b1601e41c4fbfed f35f02b4754c72326ed986cf50465332c9049d55 10619bc7f6ac280f6818f35033c6c6817d4bea155d06af0f9e27e44f3443a08b Loading...

	www.dura-cell-marketing.online/	ScriptElement	1.2 kB	2024-08-20	2024-08-20
Pretty URL www.dura-cell-marketing.online/ IP 52.77.138.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 18:58 Last Seen2024-08-20 18:58 Times Seen1 Hash 1badc2c6aa43a024fb49e3c52f519154 8c62d6c80468d5c78a155641146a0e7336f30784 1537b7e94b85e2d4ac35e954a4240da89b9fd384ef0f84a14a4198f74e6cd288 Loading...

	s.zzcdn.me/ztr/ztracker.js?id=7056840457216708608	ScriptElement	24 kB	2023-07-03	2025-02-02
Pretty URL s.zzcdn.me/ztr/ztracker.js?id=7056840457216708608 IP 123.30.58.18 ASN #45899 VNPT Corp Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-03 19:42 Last Seen2025-02-02 01:40 Times Seen221 Hash b23761a5547395d33e14d64d86fbb10e 58856a235a6414afe62cb23b667fd5b2867d7fb9 45b4fb3d724d209c5064eae7d20e445c8af7e7829aeebf0369de54febf7d8593 Loading...

HTTP Transactions (18)

	URL	IP	Response	Size
	dura-cell-marketing.online/	103.18.6.109		0 B
URL dura-cell-marketing.online/ IP 103.18.6.109:0 ASN #131392 GMO-Z.com Runsystem Joint Stock Company File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: dura-cell-marketing.online User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Moved Date: Sat, 18 Nov 2023 07:02:56 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips PHP/5.4.16 Location: http://www.dura-cell-marketing.online Content-Length: 0 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive`

	www.dura-cell-marketing.online/	52.77.138.116		11 kB
URL www.dura-cell-marketing.online/ IP 52.77.138.116:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (28355), with CR, LF line terminators Size 11 kB (11091 bytes) Hash da0c4f77cc6404d91c70b95f8025c53b ecf596d8d81e70b617a38ffcba72bd21b15079d5 09e110af2fb2335721f9ed4998f578e8ab0ac9a17060eb17c5dfffdee7995fa0 HTTP Headers `GET / HTTP/1.1 Host: www.dura-cell-marketing.online User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: openresty Date: Sat, 18 Nov 2023 07:05:36 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0 Set-Cookie: LADI_DNS_CHECK="2023-11-18 07:05:36.692456318 +0000 UTC m=+866127.705343731"; Expires=Tue, 15 Nov 2033 07:05:36 GMT LADI_CLIENT_ID=ff4a99ed-be9d-4a32-7d4a-2f4a7023947c; Expires=Tue, 15 Nov 2033 07:05:36 GMT LADI_PAGE_VIEW=0; Expires=Tue, 15 Nov 2033 07:05:36 GMT LADI_FORM_SUBMIT=0; Expires=Tue, 15 Nov 2033 07:05:36 GMT LADI_PAGE_VIEW=1; Expires=Tue, 15 Nov 2033 07:05:36 GMT LADI_CAMP_ID=; Max-Age=0 LADI_CAMP_NAME=; Max-Age=0 LADI_CAMP_TYPE=; Max-Age=0 LADI_CAMP_ORIGIN_URL=; Max-Age=0 LADI_CAMP_TARGET_URL=; Max-Age=0 LADI_CAMP_PAGE_VIEW=; Max-Age=0 LADI_CAMP_FORM_SUBMIT=; Max-Age=0 LADI_CAMP_BEHAVIOR_PAGE_VIEW=; Max-Age=0 LADI_CAMP_BEHAVIOR_FORMSUBMIT=; Max-Age=0 LADI_CAMP_CONFIG=; Max-Age=0 LADI_CAMP_END_DATE=; Max-Age=0 LADI_FUNNEL_NEXT_URL=; Max-Age=0 LADI_FUNNEL_PREV_URL=; Max-Age=0 Statuscode: 200 Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Content-Encoding: gzip

	w.ladicdn.com/ladiui/icons/social/youtube.svg	143.204.55.98		931 B
URL w.ladicdn.com/ladiui/icons/social/youtube.svg IP 143.204.55.98:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 931 B (931 bytes) Hash b0bae51ef8dfcf7db3acba66093466f2 dd412231fb5f2cf31d1eea537f662f3df499f271 e7a88e01fc2aa7297c89f7d6d76dffe0917071c9670850604e8f95f6b535ad03 HTTP Headers `GET /ladiui/icons/social/youtube.svg HTTP/1.1 Host: w.ladicdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: image/svg+xml server: nginx date: Mon, 16 Oct 2023 01:37:18 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Credentials access-control-allow-credentials: true access-control-max-age: 2592000 cache-control: public, max-age=31536000 expires: Tue, 15 Oct 2024 01:37:17 GMT content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: N4M5ZcfSHqpncPf03iY7Ftc_I4-BIWFaoc3dNJ6Q4XdJkMon5-lpYw== age: 2870899 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	142.250.74.163		48 kB
URL fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data Size 48 kB (48432 bytes) Hash e2d74c5e631bc53a7240bbfe4be99c8f eb513857bb01cc4f7249067fc7e969bef415fc90 9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5 HTTP Headers GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://www.dura-cell-marketing.online DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48432 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 16 Nov 2023 04:47:53 GMT expires: Fri, 15 Nov 2024 04:47:53 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Sep 2023 00:40:31 GMT content-type: font/woff2 age: 181064 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	w.ladicdn.com/v2/source/ladipagev3.min.js?v=1697884475394	143.204.55.98		141 kB
URL w.ladicdn.com/v2/source/ladipagev3.min.js?v=1697884475394 IP 143.204.55.98:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 141 kB (141259 bytes) Hash e0a92c12d110f6e2b644e50182d6cb48 afcf74ff91edac79d66650bb5332336b852748d8 4548eb7d2cc1e9f2d7ded616f8c9032b9648f2999e47cf727cc8beb5b506d10c HTTP Headers `GET /v2/source/ladipagev3.min.js?v=1697884475394 HTTP/1.1 Host: w.ladicdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript server: nginx date: Sat, 18 Nov 2023 06:44:16 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Credentials access-control-allow-credentials: true access-control-max-age: 2592000 cache-control: public, max-age=31536000 expires: Sun, 17 Nov 2024 06:44:16 GMT content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: QJCa4MZj9WB-CEZZlpCrGU0CYL3qHRjcZTUqj3Yz4pDcMFq_HdkUpQ== age: 1281 X-Firefox-Spdy: h2

	s.zzcdn.me/ztr/ztracker.js?id=7056840457216708608	123.30.58.18	200 OK	7.8 kB
URL GET HTTP/2 s.zzcdn.me/ztr/ztracker.js?id=7056840457216708608 IP 123.30.58.18:443 ASN #45899 VNPT Corp Requested by http://www.dura-cell-marketing.online/ Certificate IssuerDigiCert, Inc. Subject.zzcdn.me FingerprintF9:65:C4:9A:1D:A0:30:51:41:83:00:19:13:2B:14:DB:58:ED:61:48 ValidityTue, 10 Jan 2023 00:00:00 GMT - Tue, 09 Jan 2024 23:59:59 GMT File type ASCII text, with very long lines (23835) Size 7.8 kB (7848 bytes) Hash b23761a5547395d33e14d64d86fbb10e 58856a235a6414afe62cb23b667fd5b2867d7fb9 45b4fb3d724d209c5064eae7d20e445c8af7e7829aeebf0369de54febf7d8593 HTTP Headers `GET /ztr/ztracker.js?id=7056840457216708608 HTTP/1.1 Host: s.zzcdn.me User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * server: Universe date: Sat, 18 Nov 2023 07:05:38 GMT content-encoding: gzip x-cache-status: HIT age: 10623915 content-length: 7848 content-type: application/javascript cache-control: no-cache X-Firefox-Spdy: h2`

	static.ladipage.net/64426448252c200012f814e1/images-20230716182633-xpwji.jpg	52.76.24.172		134 B
URL static.ladipage.net/64426448252c200012f814e1/images-20230716182633-xpwji.jpg IP 52.76.24.172:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 134 B (134 bytes) Hash 4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a HTTP Headers `GET /64426448252c200012f814e1/images-20230716182633-xpwji.jpg HTTP/1.1 Host: static.ladipage.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently server: awselb/2.0 date: Sat, 18 Nov 2023 07:05:38 GMT content-type: text/html content-length: 134 location: https://w.ladicdn.com:443/64426448252c200012f814e1/images-20230716182633-xpwji.jpg X-Firefox-Spdy: h2`

	log.adtimaserver.vn/tracklp?type=pageview&pId=7056840457216708608&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&dur=3&atmrk=0.21532943517172498	120.138.69.217		8 B
URL log.adtimaserver.vn/tracklp?type=pageview&pId=7056840457216708608&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&dur=3&atmrk=0.21532943517172498 IP 120.138.69.217:0 ASN #38244 VNG Corporation File type ASCII text Size 8 B (8 bytes) Hash ae780585f49b94ce1444eb7d28906123 7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5 HTTP Headers GET /tracklp?type=pageview&pId=7056840457216708608&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&dur=3&atmrk=0.21532943517172498 HTTP/1.1 Host: log.adtimaserver.vn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 18 Nov 2023 07:05:39 GMT content-type: text/html;charset=utf-8 content-length: 8 access-control-allow-origin: * access-control-allow-credentials: true server: za-ngx-srv X-Firefox-Spdy: h2`

	log.adtimaserver.vn/ptrck/events?pixelId=7056840457216708608&url=http%3A%2F%2Fwww.dura-cell-marketing.online%2F	120.138.69.217		264 B
URL log.adtimaserver.vn/ptrck/events?pixelId=7056840457216708608&url=http%3A%2F%2Fwww.dura-cell-marketing.online%2F IP 120.138.69.217:0 ASN #38244 VNG Corporation File type JSON data\012- , ASCII text, with no line terminators Size 264 B (264 bytes) Hash c6bbdc33605f30531edcb8c878592990 827804654203f18692be943c0084ebb4f2f6b6f2 26b7a3d62b776389695e8b5946c8ff9a014c006b00a46edc9da189b0c17ae708 HTTP Headers GET /ptrck/events?pixelId=7056840457216708608&url=http%3A%2F%2Fwww.dura-cell-marketing.online%2F HTTP/1.1 Host: log.adtimaserver.vn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://www.dura-cell-marketing.online DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Sat, 18 Nov 2023 07:05:39 GMT content-type: application/json;charset=utf-8 content-length: 264 access-control-allow-origin: * access-control-expose-headers: X-sessionId,token server: za-ngx-srv X-Firefox-Spdy: h2`

	log.adtimaserver.vn/tracklp?type=viewable&value=view_area%3D30%3Bduration%3D1148&pId=7056840457216708608&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&atmrk=0.44587164576771043	120.138.69.217	200 OK	8 B
URL GET HTTP/2 log.adtimaserver.vn/tracklp?type=viewable&value=view_area%3D30%3Bduration%3D1148&pId=7056840457216708608&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&atmrk=0.44587164576771043 IP 120.138.69.217:443 ASN #38244 VNG Corporation Requested by http://www.dura-cell-marketing.online/ Certificate IssuerDigiCert Inc Subject.adtimaserver.vn Fingerprint02:8D:C0:05:EA:F0:64:2B:1F:9F:C8:40:D2:EC:0C:66:5F:5A:9E:82 ValidityMon, 24 Apr 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text Size 8 B (8 bytes) Hash ae780585f49b94ce1444eb7d28906123 7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5 HTTP Headers GET /tracklp?type=viewable&value=view_area%3D30%3Bduration%3D1148&pId=7056840457216708608&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&atmrk=0.44587164576771043 HTTP/1.1 Host: log.adtimaserver.vn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 18 Nov 2023 07:05:39 GMT content-type: text/html;charset=utf-8 content-length: 8 access-control-allow-origin: * access-control-allow-credentials: true server: za-ngx-srv X-Firefox-Spdy: h2`

	log.adtimaserver.vn/ptrck/log?pId=7056840457216708608&eId=1393893465614933723&et=3&url=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&value=&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&estd=ViewContent&atmrk=0.1359704488849286	120.138.69.217		21 B
URL log.adtimaserver.vn/ptrck/log?pId=7056840457216708608&eId=1393893465614933723&et=3&url=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&value=&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&estd=ViewContent&atmrk=0.1359704488849286 IP 120.138.69.217:0 ASN #38244 VNG Corporation File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash ed0bf75af858f5591d1a828b1eb0401e 77b895a46960cfb0136381ac4102edbbff62c754 2db5c83947e9ea77e157e2cc0bc39aee8008dea9459684908f2742eec3a07d09 HTTP Headers GET /ptrck/log?pId=7056840457216708608&eId=1393893465614933723&et=3&url=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&value=&adtid=null&curl=http%3A%2F%2Fwww.dura-cell-marketing.online%2F&uid=&ver=1.1.29&ref=&estd=ViewContent&atmrk=0.1359704488849286 HTTP/1.1 Host: log.adtimaserver.vn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 18 Nov 2023 07:05:39 GMT content-type: application/json;charset=utf-8 content-length: 21 access-control-allow-origin: * access-control-expose-headers: X-sessionId,token server: za-ngx-srv X-Firefox-Spdy: h2`

	a.ladipage.com/event	13.250.196.120	200 OK	106 B
URL POST HTTP/2 a.ladipage.com/event IP 13.250.196.120:443 ASN #16509 AMAZON-02 Requested by http://www.dura-cell-marketing.online/ Certificate IssuerAmazon Subjecta.ladipage.com Fingerprint62:67:EE:A4:F2:A1:8E:D8:49:2A:21:9C:99:14:BF:72:5A:21:0A:9D ValidityThu, 18 May 2023 00:00:00 GMT - Sat, 15 Jun 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 106 B (106 bytes) Hash 1b0fbcd644b2fd5e7f516acf3aecbd83 8154d902bb9bcc1d424998b5cfd94ae1b065d6ac 09b06d2aef938b6e871e050d0d1079b124634036a142fa23cc47aed667c9f5bc HTTP Headers POST /event HTTP/1.1 Host: a.ladipage.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json LADI_CLIENT_ID: ff4a99ed-be9d-4a32-7d4a-2f4a7023947c LADI_PAGE_VIEW: 1 LADI_FORM_SUBMIT: 0 LADI_CAMP_ID: LADI_CAMP_NAME: LADI_CAMP_TYPE: LADI_CAMP_TARGET_URL: LADI_CAMP_ORIGIN_URL: LADI_CAMP_PAGE_VIEW: 0 LADI_CAMP_FORM_SUBMIT: 0 Content-Length: 245 Origin: http://www.dura-cell-marketing.online DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 18 Nov 2023 07:05:38 GMT content-type: text/plain; charset=utf-8 x-frame-options: SAMEORIGIN x-xss-protection: 0 x-content-type-options: nosniff x-download-options: noopen access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Accept-Encoding, ladi_camp_form_submit, ladi_camp_form_submit_daily, ladi_camp_id, ladi_camp_name, ladi_camp_origin_url, ladi_camp_page_view, ladi_camp_page_view_daily, ladi_camp_target_url, ladi_camp_type, ladi_client_id, ladi_form_submit, ladi_form_submit_daily, ladi_page_view, ladi_page_view_daily access-control-max-age: 2592000 X-Firefox-Spdy: h2

	w.ladicdn.com/64426448252c200012f814e1/images-20230716182633-xpwji.jpg	0.0.0.0		0 B
URL GET w.ladicdn.com/64426448252c200012f814e1/images-20230716182633-xpwji.jpg IP 0.0.0.0:0 ASN #0 Requested by http://www.dura-cell-marketing.online/ Certificate IssuerAmazon Subjectw.ladicdn.com Fingerprint91:81:42:8B:13:4C:F4:4D:E5:26:56:40:9C:9C:C9:AA:28:98:4B:4D ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /64426448252c200012f814e1/images-20230716182633-xpwji.jpg HTTP/1.1 Host: w.ladicdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://www.dura-cell-marketing.online/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg server: nginx date: Wed, 15 Nov 2023 13:48:24 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Credentials access-control-allow-credentials: true access-control-max-age: 2592000 cache-control: public, max-age=31536000 expires: Thu, 14 Nov 2024 13:48:24 GMT content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: sQb3WkM_F_LkzBJFVLMDW41AQtLRvDiZbuzwtK0LocANM0LTK7160A== age: 235034 X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Open+Sans:wght@400;700&display=swap	142.250.74.106	200 OK	5.9 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by http://www.dura-cell-marketing.online/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type ASCII text, with very long lines (6016), with no line terminators Size 5.9 kB (5856 bytes) Hash 6d7c704f1c3610116485e92c5c3aedab fd9c9d3857c67978c125caa452214eaea4b77023 35d7fde7f35ca547f6e9e88e7677ea2393b54289ff568d7ec9e4a8fdaea76e01 HTTP Headers `GET /css2?family=Open+Sans:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 18 Nov 2023 07:05:37 GMT date: Sat, 18 Nov 2023 07:05:37 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	w.ladicdn.com/s2300x1450/64426448252c200012f814e1/1-20230716165018-joarr.png	0.0.0.0		0 B
URL GET w.ladicdn.com/s2300x1450/64426448252c200012f814e1/1-20230716165018-joarr.png IP 0.0.0.0:0 ASN #0 Requested by http://www.dura-cell-marketing.online/ Certificate IssuerAmazon Subjectw.ladicdn.com Fingerprint91:81:42:8B:13:4C:F4:4D:E5:26:56:40:9C:9C:C9:AA:28:98:4B:4D ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /s2300x1450/64426448252c200012f814e1/1-20230716165018-joarr.png HTTP/1.1 Host: w.ladicdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png server: nginx date: Wed, 15 Nov 2023 13:48:15 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Credentials access-control-allow-credentials: true access-control-max-age: 2592000 cache-control: public, max-age=31536000 expires: Thu, 14 Nov 2024 13:48:15 GMT content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: KaahSBLzeyNwuP65BlcY1hmyd8rxyahbq9dXfUq49cSub_VhP112JQ== age: 235042 X-Firefox-Spdy: h2

	w.ladicdn.com/ladiui/icons/social/facebook.svg	143.204.55.98	200 OK	672 B
URL GET HTTP/2 w.ladicdn.com/ladiui/icons/social/facebook.svg IP 143.204.55.98:443 ASN #16509 AMAZON-02 Requested by http://www.dura-cell-marketing.online/ Certificate IssuerAmazon Subjectw.ladicdn.com Fingerprint91:81:42:8B:13:4C:F4:4D:E5:26:56:40:9C:9C:C9:AA:28:98:4B:4D ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (694), with no line terminators Size 672 B (672 bytes) Hash 85da93b76b65fe11ec609b6db9ec6a0c 24ce0ca62ec0322fe86107db3a1370246717bf75 98ba8552e637cdd8cfd4c37e7045f79d6bcf3a6959e5dfdc22300354e0da9adc HTTP Headers `GET /ladiui/icons/social/facebook.svg HTTP/1.1 Host: w.ladicdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/svg+xml server: nginx date: Mon, 16 Oct 2023 01:32:51 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Credentials access-control-allow-credentials: true access-control-max-age: 2592000 cache-control: public, max-age=31536000 expires: Tue, 15 Oct 2024 01:32:51 GMT content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: jdyvVsXdoQfXSO1WFwyto7JtaQtMotratDZW997Zwc4VK-ZwZpTRZQ== age: 2871165 X-Firefox-Spdy: h2

	w.ladicdn.com/s950x950/64bc9e685e9a8100128f6739/cell_n_be-removebg-preview-20230723055045-qpyt2.png	0.0.0.0		0 B
URL GET w.ladicdn.com/s950x950/64bc9e685e9a8100128f6739/cell_n_be-removebg-preview-20230723055045-qpyt2.png IP 0.0.0.0:0 ASN #0 Requested by http://www.dura-cell-marketing.online/ Certificate IssuerAmazon Subjectw.ladicdn.com Fingerprint91:81:42:8B:13:4C:F4:4D:E5:26:56:40:9C:9C:C9:AA:28:98:4B:4D ValidityThu, 12 Oct 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /s950x950/64bc9e685e9a8100128f6739/cell_n_be-removebg-preview-20230723055045-qpyt2.png HTTP/1.1 Host: w.ladicdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.dura-cell-marketing.online/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png server: nginx date: Wed, 15 Nov 2023 13:48:15 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Access-Control-Allow-Credentials access-control-allow-credentials: true access-control-max-age: 2592000 cache-control: public, max-age=31536000 expires: Thu, 14 Nov 2024 13:48:15 GMT content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: JXWOs16D583Y8ggVA-eO0FW8yUxK9e1T34Ba7SHD0SRpt2jLKH4X6A== age: 235042 X-Firefox-Spdy: h2

	a.ladipage.com/event	13.250.196.120	200 OK	0 B
URL OPTIONS HTTP/2 a.ladipage.com/event IP 13.250.196.120:443 ASN #16509 AMAZON-02 Requested by http://www.dura-cell-marketing.online/ Certificate IssuerAmazon Subjecta.ladipage.com Fingerprint62:67:EE:A4:F2:A1:8E:D8:49:2A:21:9C:99:14:BF:72:5A:21:0A:9D ValidityThu, 18 May 2023 00:00:00 GMT - Sat, 15 Jun 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /event HTTP/1.1 Host: a.ladipage.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,ladi_camp_form_submit,ladi_camp_id,ladi_camp_name,ladi_camp_origin_url,ladi_camp_page_view,ladi_camp_target_url,ladi_camp_type,ladi_client_id,ladi_form_submit,ladi_page_view Referer: http://www.dura-cell-marketing.online/ Origin: http://www.dura-cell-marketing.online DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sat, 18 Nov 2023 07:05:38 GMT content-type: application/json; charset=utf-8 x-frame-options: SAMEORIGIN x-xss-protection: 0 x-content-type-options: nosniff x-download-options: noopen access-control-allow-origin: * access-control-allow-methods: POST, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Accept-Encoding, ladi_camp_form_submit, ladi_camp_form_submit_daily, ladi_camp_id, ladi_camp_name, ladi_camp_origin_url, ladi_camp_page_view, ladi_camp_page_view_daily, ladi_camp_target_url, ladi_camp_type, ladi_client_id, ladi_form_submit, ladi_form_submit_daily, ladi_page_view, ladi_page_view_daily access-control-max-age: 2592000 vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (18)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash